Month: October 2013

A few weeks ago Facebook announced the removal of a “Search” setting. That’s their marketing term for a privacy setting. The setting in question allowed a user to prevent his or her Facebook profile from being discovered via Facebook’s search function. Now before you go look for it, you should know that most of us …

We have decided to try something new here at Secure Ideas. We have a long history (as long as the company actually) of doing webcasts and presentations around the country. (And we plan on continuing those!) But we thought maybe we could start doing some of our own. So we have recently signed up with …

James and I recorded the next episode of the Professionally Evil Perspective podcast this morning. In it we get back to walking through the methodology that we use during a web application penetration test. We had covered recon and mapping, so in this episode we go through the third step; discovery! James and I discuss …

I think that it is because of my background in software development that I am passionate about integrating security testing with the SDLC (Software/Systems Development Life Cycle). Or perhaps it’s just that watching development teams push untested code to production grates on my nerves worse than nails on a chalkboard. Whatever the case, security testing …

I have a friend who is an alcoholic. A few weeks ago after 5 years of sobriety, she stumbled and had a relapse. It doesn’t make her a bad person, just a fighter. She starts everyday with a reminder of where she’s been, and where she’s going. And in the last 5 years she has …

James and I presented at DerbyCon last week. We talked about some of the weaknesses found in SharePoint deploys and ways to test them. We also walked through a couple of tools we are releasing that people can use to test and exploit SharePoint. Here is the video from that presentation. Kevin Johnson is the …

Speaking is a major fear for most people. Even though I have been speaking at public events of one type or another for the last 20 years, I am still not comfortable presenting to crowds. (Thats putting it lightly.) So when my daughter started talking about “doing what you do, dad”, I was curious how …